Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d4/3738e7-c928-4141-9cec-3f3cc1e573fd/1/okNXvhlYeWsSxCtPTKxRuD3o_Ss.mft
File: okNXvhlYeWsSxCtPTKxRuD3o_Ss.mft (raw, json)
Hash identifier: AQHntFIsRGIw6MryedcHIiyPn26qpTV19lqu+9nl4Fc=
Subject key identifier: CA:82:F1:D5:93:A0:3D:46:CD:6F:B3:8C:F4:2A:71:0B:11:90:E8:54
Authority key identifier: A2:43:57:BE:19:58:79:6B:12:C4:2B:4F:4C:AC:51:B8:3D:E8:FD:2B
Certificate issuer: /CN=a24357be1958796b12c42b4f4cac51b83de8fd2b
Certificate serial: 019ECC728488034C80EE184B24E780E0F7A5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/okNXvhlYeWsSxCtPTKxRuD3o_Ss.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d4/3738e7-c928-4141-9cec-3f3cc1e573fd/1/okNXvhlYeWsSxCtPTKxRuD3o_Ss.mft
Manifest number: 0417
Signing time: Mon 15 Jun 2026 18:01:57 +0000
Manifest this update: Mon 15 Jun 2026 18:01:57 +0000
Manifest next update: Tue 16 Jun 2026 18:01:57 +0000
Files and hashes: 1: Cyd9epktZUP2NzDWt7kuBmj63qY.roa (hash: 4Hn7SVvllIET4/FJbhg9Vi4tqF9x0RkLIB5CUH+jolo=)
2: okNXvhlYeWsSxCtPTKxRuD3o_Ss.crl (hash: hm6vN08IMOyaVWpjTPSUTX0cqG85UYh8Emb9P7V6B5s=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d4/3738e7-c928-4141-9cec-3f3cc1e573fd/1/okNXvhlYeWsSxCtPTKxRuD3o_Ss.crl
rsync://rpki.ripe.net/repository/DEFAULT/d4/3738e7-c928-4141-9cec-3f3cc1e573fd/1/okNXvhlYeWsSxCtPTKxRuD3o_Ss.mft
rsync://rpki.ripe.net/repository/DEFAULT/okNXvhlYeWsSxCtPTKxRuD3o_Ss.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 16 Jun 2026 18:01:57 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:cc:72:84:88:03:4c:80:ee:18:4b:24:e7:80:e0:f7:a5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a24357be1958796b12c42b4f4cac51b83de8fd2b
Validity
Not Before: Jun 15 18:01:57 2026 GMT
Not After : Jun 16 18:01:57 2026 GMT
Subject: CN=ca82f1d593a03d46cd6fb38cf42a710b1190e854
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dd:a4:8c:58:6d:3b:7d:3f:b4:e2:71:75:23:83:
52:d8:48:2d:92:d5:6a:3e:c6:07:a7:7d:f4:ca:10:
4f:9f:a3:25:07:19:7b:3c:28:5a:ca:7b:2a:8b:7a:
45:df:11:1b:8c:f9:65:e4:07:e7:ff:47:18:e1:11:
0d:0c:89:a9:0a:4d:4b:42:03:99:f3:48:7e:3c:31:
23:26:b8:86:c2:bb:d4:ba:cb:05:5c:7f:66:02:18:
35:d1:4d:2f:e0:9b:ba:d4:bd:31:97:ea:8d:86:ef:
cb:2d:eb:bf:c2:80:44:6b:4a:e3:8b:1a:e3:e7:30:
d2:b9:66:ec:8c:7d:42:96:e6:d9:c7:81:ce:85:8e:
33:7d:82:59:28:aa:43:53:15:2c:cb:0a:b7:8b:5c:
01:ef:0b:13:d0:60:c8:ea:73:26:7c:e7:47:75:bb:
b3:6a:5a:b0:d2:b0:41:47:3c:e4:e3:c8:17:00:76:
81:d9:94:f3:a4:91:15:6b:f1:6d:af:98:61:02:a3:
94:14:6b:69:31:e6:95:92:72:a8:04:fe:2a:dd:b1:
21:2e:13:fe:cd:b0:10:14:d9:e6:8a:f8:6f:77:22:
8d:0c:68:40:65:77:0e:f1:c1:54:9f:9e:42:12:f2:
26:b8:a5:bd:21:50:30:d4:50:8f:23:45:4a:e0:3e:
fb:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CA:82:F1:D5:93:A0:3D:46:CD:6F:B3:8C:F4:2A:71:0B:11:90:E8:54
X509v3 Authority Key Identifier:
keyid:A2:43:57:BE:19:58:79:6B:12:C4:2B:4F:4C:AC:51:B8:3D:E8:FD:2B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/okNXvhlYeWsSxCtPTKxRuD3o_Ss.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/3738e7-c928-4141-9cec-3f3cc1e573fd/1/okNXvhlYeWsSxCtPTKxRuD3o_Ss.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/3738e7-c928-4141-9cec-3f3cc1e573fd/1/okNXvhlYeWsSxCtPTKxRuD3o_Ss.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7c:f4:31:2e:80:54:14:3d:bf:77:50:e2:07:73:82:f3:36:c9:
88:e4:e0:c5:91:b0:ba:48:59:b2:5f:99:90:d8:2f:45:6c:75:
6f:c5:2c:c1:fa:3c:bf:b9:f2:c8:58:3b:9a:0c:8e:20:2a:4a:
0d:f7:31:f6:b1:68:4f:a9:be:db:4d:0b:3a:49:a5:f2:ef:3d:
ce:fd:52:56:9b:16:99:7c:88:84:a2:02:b7:b4:6f:a0:ed:20:
4e:fa:16:86:6a:17:5a:9b:8a:9f:17:09:3a:f4:28:00:ce:d3:
46:a2:eb:93:43:8e:f7:d8:d5:99:c9:36:23:7d:0a:1d:b3:85:
91:4c:eb:d0:88:3a:45:2c:da:2f:b0:9c:96:9f:d0:d0:13:f3:
93:78:4e:99:4e:c8:21:5b:c6:e0:d0:9a:be:71:eb:3b:43:13:
9a:7f:43:bf:f8:64:38:c4:29:0c:2b:89:56:43:4b:61:c9:c5:
3d:08:27:5b:27:ac:9c:d2:22:93:2f:da:e4:9e:8a:c0:bb:c6:
99:93:55:97:08:f8:b6:e6:e2:de:04:74:b6:11:a2:38:9c:40:
18:c8:ad:27:1c:43:e3:98:4f:b5:b5:24:ac:2b:a6:51:31:a7:
e1:6d:4b:89:49:39:36:c7:76:8d:50:e2:69:12:96:0e:27:cc:
43:2a:9d:e3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jun 16 03:57:21 2026 by rpki-client